Note:
This project will be discontinued after December 13, 2021. [more]
Product:
D6100_firmware
(Netgear)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 67 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2023-02-02 | CVE-2023-23110 | An exploitable firmware modification vulnerability was discovered in certain Netgear products. The data integrity of the uploaded firmware image is ensured with a fixed checksum number. Therefore, an attacker can conduct a MITM attack to modify the user-uploaded firmware image and bypass the checksum verification. This affects WNR612v2 Wireless Routers 1.0.0.3 and earlier, DGN1000v3 Modem Router 1.0.0.22 and earlier, D6100 WiFi DSL Modem Routers 1.0.0.63 and earlier, WNR1000v2 Wireless... | D6100_firmware, Dgn1000v3_firmware, R8900_firmware, R9000_firmware, Wnr1000v2_firmware, Wnr2200_firmware, Wnr2500_firmware, Wnr612v2_firmware, Xavn2001v2_firmware | 7.4 | ||
| 2021-08-11 | CVE-2021-38514 | Certain NETGEAR devices are affected by authentication bypass. This affects D3600 before 1.0.0.72, D6000 before 1.0.0.72, D6100 before 1.0.0.63, D6200 before 1.1.00.34, D6220 before 1.0.0.48, D6400 before 1.0.0.86, D7000 before 1.0.1.70, D7000v2 before 1.0.0.52, D7800 before 1.0.1.56, D8500 before 1.0.3.44, DC112A before 1.0.0.42, DGN2200v4 before 1.0.0.108, DGND2200Bv4 before 1.0.0.108, EX2700 before 1.0.1.48, EX3700 before 1.0.0.76, EX3800 before 1.0.0.76, EX6000 before 1.0.0.38, EX6100... | D3600_firmware, D6000_firmware, D6100_firmware, D6200_firmware, D6220_firmware, D6400_firmware, D7000_firmware, D7800_firmware, D8500_firmware, Dc112a_firmware, Dgn2200_firmware, Dgnd2200b_firmware, Ex2700_firmware, Ex3700_firmware, Ex3800_firmware, Ex6000_firmware, Ex6100_firmware, Ex6120_firmware, Ex6130_firmware, Ex6150_firmware, Ex6200_firmware, Ex6400_firmware, Ex7000_firmware, Ex7300_firmware, Ex8000_firmware, Jr6150_firmware, Pr2000_firmware, R6020_firmware, R6050_firmware, R6080_firmware, R6120_firmware, R6220_firmware, R6250_firmware, R6300_firmware, R6400_firmware, R6700_firmware, R6800_firmware, R6900_firmware, R6900p_firmware, R7000_firmware, R7000p_firmware, R7100lg_firmware, R7300dst_firmware, R7500_firmware, R7800_firmware, R7900_firmware, R7900p_firmware, R8000_firmware, R8000p_firmware, R8300_firmware, R8500_firmware, R9000_firmware, Rbk40_firmware, Rbk50_firmware, Rbk50v_firmware, Rbr40_firmware, Rbr50_firmware, Rbs40_firmware, Rbs40v_firmware, Rbs50_firmware, Rbw30_firmware, Wn2000rpt_firmware, Wn2500rp_firmware, Wn3000rp_firmware, Wn3100rp_firmware, Wndr3400_firmware, Wndr3700_firmware, Wndr4300_firmware, Wndr4500_firmware, Wnr2000_firmware, Wnr2020_firmware, Wnr2050_firmware, Wnr3500l_firmware, Xr500_firmware | 2.7 | ||
| 2021-12-26 | CVE-2021-45550 | Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D3600 before 1.0.0.76, D6000 before 1.0.0.78, D6100 before 1.0.0.63, D6220 before 1.0.0.52, D6400 before 1.0.0.86, D7800 before 1.0.1.56, D8500 before 1.0.3.44, DGN2200Bv4 before 1.0.0.109, DGN2200v4 before 1.0.0.110, R6250 before 1.0.4.34, R6300v2 before 1.0.4.34, R6400 before 1.0.1.46, R6400v2 before 1.0.2.66, R6700 before 1.0.2.6, R6700v3 before 1.0.2.66, R6900 before 1.0.2.4, R6900P before... | D3600_firmware, D6000_firmware, D6100_firmware, D6220_firmware, D6400_firmware, D7800_firmware, D8500_firmware, Dgn2200_firmware, Dgn2200b_firmware, R6250_firmware, R6300_firmware, R6400_firmware, R6700_firmware, R6900_firmware, R6900p_firmware, R7000_firmware, R7000p_firmware, R7100lg_firmware, R7300_firmware, R7900_firmware, R7900p_firmware, R8000_firmware, R8000p_firmware, R8300_firmware, R8500_firmware, Wndr3400_firmware, Wnr3500l_firmware, Xr500_firmware | 6.8 | ||
| 2021-08-11 | CVE-2021-38534 | Certain NETGEAR devices are affected by stored XSS. This affects D3600 before 1.0.0.76, D6000 before 1.0.0.76, D6100 before 1.0.0.60, D6200 before 1.1.00.36, D6220 before 1.0.0.52, D6400 before 1.0.0.86, D7000 before 1.0.1.70, D7000v2 before 1.0.0.53, D8500 before 1.0.3.44, DC112A before 1.0.0.42, DGN2200v4 before 1.0.0.110, DGND2200Bv4 before 1.0.0.109, DM200 before 1.0.0.61, JR6150 before 1.0.1.18, PR2000 before 1.0.0.28, R6020 before 1.0.0.42, R6050 before 1.0.1.18, R6080 before 1.0.0.42,... | D3600_firmware, D6000_firmware, D6100_firmware, D6200_firmware, D6220_firmware, D6400_firmware, D7000_firmware, D8500_firmware, Dc112a_firmware, Dgn2200_firmware, Dgnd2200b_firmware, Dm200_firmware, Jr6150_firmware, Pr2000_firmware, R6020_firmware, R6050_firmware, R6080_firmware, R6220_firmware, R6230_firmware, R6250_firmware, R6260_firmware, R6300_firmware, R6400_firmware, R6700_firmware, R6800_firmware, R6900_firmware, R6900p_firmware, R7000_firmware, R7000p_firmware, R7100lg_firmware, R7300dst_firmware, R7450_firmware, R7900_firmware, R7900p_firmware, R8000_firmware, R8000p_firmware, R8300_firmware, R8500_firmware, Wndr3400_firmware, Wnr2020_firmware, Wnr3500l_firmware, Xr450_firmware, Xr500_firmware | 4.8 | ||
| 2020-04-16 | CVE-2019-20688 | Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D3600 before 1.0.0.75, D6000 before 1.0.0.75, D6100 before 1.0.0.63, EX2700 before 1.0.1.48, EX6100v2 before 1.0.1.76, EX6150v2 before 1.0.1.76, EX6200v2 before 1.0.1.72, EX6400 before 1.0.2.136, EX7300 before 1.0.2.136, EX8000 before 1.0.1.180, R7800 before 1.0.2.52, R8900 before 1.0.4.2, R9000 before 1.0.4.2, WN2000RPTv3 before 1.0.1.32, WN3000RPv2 before 1.0.0.68, WN3100RPv2 before 1.0.0.60,... | D3600_firmware, D6000_firmware, D6100_firmware, Ex2700_firmware, Ex6100_firmware, Ex6150_firmware, Ex6200_firmware, Ex6400_firmware, Ex7300_firmware, Ex8000_firmware, R7800_firmware, R8900_firmware, R9000_firmware, Wn2000rpt_firmware, Wn3000rp_firmware, Wn3100rp_firmware, Wndr3700_firmware, Wndr4300_firmware, Wndr4500_firmware, Wnr2000_firmware, Xr500_firmware | 6.8 | ||
| 2020-04-16 | CVE-2019-20689 | Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D6000 before 1.0.0.75, D6100 before 1.0.0.63, EX2700 before 1.0.1.48, EX6100v2 before 1.0.1.76, EX6150v2 before 1.0.1.76, EX6200v2 before 1.0.1.72, EX6400 before 1.0.2.136, EX7300 before 1.0.2.136, EX8000 before 1.0.1.180, R7800 before 1.0.2.52, R8900 before 1.0.4.2, R9000 before 1.0.4.2, WN2000RPTv3 before 1.0.1.32, WN3000RPv2 before 1.0.0.68, WN3100RPv2 before 1.0.0.60, WNDR3700v4 before... | D6000_firmware, D6100_firmware, Ex2700_firmware, Ex6100_firmware, Ex6150_firmware, Ex6200_firmware, Ex6400_firmware, Ex7300_firmware, Ex8000_firmware, R7800_firmware, R8900_firmware, R9000_firmware, Wn2000rpt_firmware, Wn3000rp_firmware, Wn3100rp_firmware, Wndr3700_firmware, Wndr4300_firmware, Wndr4500_firmware, Wnr2000_firmware, Xr500_firmware | 6.8 | ||
| 2020-12-30 | CVE-2020-35808 | Certain NETGEAR devices are affected by stored XSS. This affects D6100 before 1.0.0.63, DM200 before 1.0.0.61, R7800 before 1.0.2.52, R8900 before 1.0.4.12, R9000 before 1.0.4.12, WN3000RPv2 before 1.0.0.68, and WNR2000v5 before 1.0.0.66. | D6100_firmware, Dm200_firmware, R7800_firmware, R8900_firmware, R9000_firmware, Wn3000rpv2_firmware, Wnr2000v5_firmware | 4.8 | ||
| 2020-10-09 | CVE-2020-26913 | Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects D6100 before 1.0.0.63, R7800 before 1.0.2.60, R8900 before 1.0.4.26, R9000 before 1.0.4.26, RBK20 before 2.3.0.28, RBR20 before 2.3.0.28, RBS20 before 2.3.0.28, RBK50 before 2.3.0.32, RBR50 before 2.3.0.32, RBS50 before 2.3.0.32, RBK40 before 2.3.0.28, RBR40 before 2.3.0.28, RBS40 before 2.3.0.28, SRK60 before 2.2.2.20, SRR60 before 2.2.2.20, SRS60 before 2.2.2.20, WN3000RPv2 before... | D6100_firmware, R7800_firmware, R8900_firmware, R9000_firmware, Rbk20_firmware, Rbk40_firmware, Rbk50_firmware, Rbr20_firmware, Rbr50_firmware, Rbs20_firmware, Rbs40_firmware, Rbs50_firmware, Srk60_firmware, Srr60_firmware, Srs60_firmware, Wn3000rpv2_firmware, Wndr4300v2_firmware, Wndr4500v3_firmware, Wnr2000v5_firmware, Xr450_firmware, Xr500_firmware | 6.8 | ||
| 2020-04-24 | CVE-2017-18703 | Certain NETGEAR devices are affected by CSRF. This affects D1500 before 1.0.0.25, D500 before 1.0.0.25, D6100 before 1.0.0.55, D7000 before 1.0.1.50, D7800 before 1.0.1.28, EX6100v2 before 1.0.1.60, EX6150v2 before 1.0.1.60, JNR1010v2 before 1.1.0.46, JR6150 before 1.0.1.16, JWNR2010v5 before 1.1.0.46, PR2000 before 1.0.0.18, R6020 before 1.0.0.26, R6050 before 1.0.1.16, R6080 before 1.0.0.26, R6100 before 1.0.1.20, R6220 before 1.1.0.60, R7500 before 1.0.0.118, R7500v2 before 1.0.3.20,... | D1500_firmware, D500_firmware, D6100_firmware, D7000_firmware, D7800_firmware, Ex6100_firmware, Ex6150_firmware, Jnr1010_firmware, Jr6150_firmware, Jwnr2010_firmware, Pr2000_firmware, R6020_firmware, R6050_firmware, R6080_firmware, R6100_firmware, R6220_firmware, R7500_firmware, R7800_firmware, R9000_firmware, Wn3000rp_firmware, Wn3100rp_firmware, Wndr3700_firmware, Wndr4300_firmware, Wndr4500_firmware, Wnr1000_firmware, Wnr2000_firmware, Wnr2020_firmware, Wnr2050_firmware | N/A | ||
| 2020-05-05 | CVE-2017-18867 | Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects D6100 before 1.0.0.55, D7800 before V1.0.1.24, R7100LG before V1.0.0.32, WNDR4300v1 before 1.0.2.90, and WNDR4500v3 before 1.0.0.48. | D6100_firmware, D7800_firmware, R7100lg_firmware, Wndr4300_firmware, Wndr4500_firmware | N/A |